The core objects of your system, from a user’s perspective, are processes and files. All processes perform some function, but the files contain the instructions needed to start a process. Files store data and provide the fundamental interface to every device you can access on a system. In fact, in Solaris, a file even acts as the interface between a process and a network connection. It is a simple and versatile interface. It provides a name and a location for every user-accessible thing on a running system.
In Solaris, the base security model for files is called discretionary access control (DAC). This model has two principles:
The authorization to use a file is defined by the account that owns it.
A file’s owner may ...